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A system and method for providing Internet access via a 
Public Switched Telecommunications Network (PSTN) 
using full time asymmetric digital subscriber line connec- 
tions between subscriber premises processor terminals and a 
local area network (LAN) node and router gateway on Telco 
premises connected to a Telco digital packet network con- 
nected to Internet service providers and Internet information 
providers. A domain name server (DNS) and a dynamic host 
configuration protocol (DHCP) server are connected to the 
router to provide domain name to IP address translations and 
temporary assignment of IP addresses to said customer 
premises processor terminal. The customer or subscriber 
going on-line communicates with the DHCP using encryp- 
tion and preferably public/private key encryption to both 
authenticate the customer and the DHCP. The DHCP 
updates the database in the DNS to maintain freshness. The 
digital packets in the network use several protocols with a 
TCP/IP payload encapsulated therein without the need for 
translation or conversion. 

30 Claims, 25 Drawing Sheets 
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• Solid Lines: Existing Protocols 

• Long Dashed Lines: Existing Protocols with additional 
information in the OPTIONS files 

• Short Dashed Line: New Protocols 
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UNIVERSAL ACCESS MULTIMEDIA DATA 
NETWORK 

TECHNICAL FIELD 

The present invention relates to methods and system 
structures for providing public and private access to on-line 
multimedia services and more particularly access to Internet 
information providers and private or corporate local area 
networks. The invention provides improved access to such 
services through the public telecommunications system 
including over existing copper telephone lines. 

Acronyms 

The written description uses a large number of acronyms 
to refer to various services and system components. 
Although known, use of a number of these acronyms is not 
strictly standardized in the art. For purposes of this 
discussion, acronyms therefore will be defined as follows: 

ACP Action Control Point 
ADSL Asymmetric Digital Subscriber line 
AIN Advanced Intelligent Network 
ASP Advanced Services Platform 
ATM Asynchronous Transfer Mode 
ATU-C ADSL Terminal Unit - Central Office 
ATU-R ADSL Terminal Unit - Remote 
AWC Area Wide Centrex 
COS Common Channel Interoffice Signaling 
CO Central Office 

DHCP Dynamic Host Configuration frotocol 

DNS Domain Name Service 

DRS Data and Reporting System 

FSN Full Service Network 

HSDS High Speed Data Access Server 

IP 1. Internetwork Protocol 2. Information Provider 

ISCP Integrated Service Control Point 

BP Internet Service Provider 

LEC Local Exchange Carrier 

NAMP North American Memory Plan Number 

NOS Network Operating System 

PABX Private Automatic Branch Exchange 

PBX Private Branch Exchange 

PSTN Public Switched Telephone Network 

SCE Service Creation Environment 

SCP Service Control Point 

SMDR Station Message Detail Recording 

SMDS Switched Megabit Data Services 

SMS Service Management System 

SNMP Simple Network Management Protocol 

SOHO Small Office Home Office 

SSP Service Switching Point 

SIP Signaling Transfer Point 

TCAP Transaction Capabilities Applications Protocol 

TL1 Transaction Language 1 

UDP User Datagram Protocol 

WAN Wide Area Network 

WAN-MAC Wide- Area Network Maintenance Administra- 
tion Center 

BACKGROUND 

Referring to FIG. 1 there is shown a simplified diagram of 
the Internet. Generally speaking the Internet consists of 
Autonomous Systems (AS) which may be owned and oper- 
ated by Internet Service Providers (ISPs) such as PSL 
UUNET. MCI. SPRINT, etc. Three such AS/ISPs are shown 
in FIG. I at 10, 12 and 14. The Autonomous Systems (ASs) 



are linked by Inter-AS Connections 11, 13 and 15. Infor- 
mation Providers (IPs) 16 and 18, such as America Online 
(AOL) and Compuserve, are connected to the Internet via 
high speed lines 20 and 22, such as T1/T3 and the like. 
5 Information Providers generally do not have their own 
Internet based Autonomous Systems but have or use Dial- 
Up Networks such as SprintNet (X.25), DATAPAC and 
TYMNET. 

By way of current illustration MCI is both an ISP and an 
10 IP, Sprint is an ISP, and Microsoft (MSN) is an IP using 
UUNET as an ISP Other information providers, such as 
universities, are indicated in exemplary fashion at 24 and are 
connected to the AS/ISPs via the same type connections here 
illustrated as Tl lines 26. Corporate Local Area Networks 
15 (LANs), such as those illustrated in 28 and 50. are connected 
through routers 32 and 34 and links shown as Tl lines 36 and 
38. Laptop computers 40 and 42 are shown connected to the 
AS/ISPs via dial up links 44 and 46. 

The Information Providers (IPs) constitute the end sys- 
tems which collect and market the information through their 
own servers. Access providers are companies such as 
UUNET, PSL MCI and SPRINT which carry the informa- 
tion. Such companies market the usage of their networks. 

In simplified fashion the Internet may be viewed as a 
series of routers connected together with computers con- 
nected to the routers. In the addressing scheme of the 
Internet an address comprises four numbers separated by 
dots. An example would be 164.109.211.237. Each machine 
on the Internet has a unique number which constitutes one 
of these four numbers. In the address the leftmost number is 
the highest number. By analogy this would correspond to the 
ZIP code in a mailing address. At times the first two numbers 
constitute this portion of the address indicating a network or 
a locale. That network is connected to the last router in the 
transport path. In differentiating between two computers in 
the same destination network only the last number field 
changes. In such an example the next number field 211 
identifies the destination router. When the packet bearing the 
destination address leaves the source router it examines the 
first two numbers in a matrix table to determine how many 
hops are the mmimum to get to the destination. It then sends 
the packet to the next router as determined from that table 
and the procedure is repeated. Each router has a database 
table that finds the information automatically. This continues 
until the packet arrives at the destination computer. The 
separate packets that constitute a message may not travel the 
same path depending on traffic load. However they all reach 
the same destination and are assembled in their original 
order in a connectionless fashion. This is in contrast to 
connection oriented modes such as frame relay and ATM or 
voice. 

FIG. 2 provides a simplified illustration of Internet con- 
nectivity. 

The Internet Service Providers (ISPs) 1 and 2 indicated at 
14 and 10, respectively, each have Dynamic Host Configu- 
ration Protocol (DHCP) servers 52 and 54 that provide users 
with a temporary IP address to connect to the Internet These 
ISPs also have Domain Name Service (DNS) servers 56 and 
60 58 which provide HOST resolution addresses to the users, 
i.e., they translate domain names into IP addresses. This 
provides easier recognition based on domain name versus IP 
address. DNS servers point to each other for address reso- 
lution. 

The residential consumer has an increasing requirement 
for bandwidth to the home to support access to interactive 
multi-media services including Internet access. Distance 
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Learning, and remote access to corporate LANs for tele- 
commuting. At present the speed of access is limited by the 
speed of the modem connecting the home computer to the 
Data Information Provider or Corporate LAN over the 
public switched telephone network. These speeds range 5 
from 9.6 kbps to 28.8 kbps over the Public Switched 
Telephone Network (PSTN) and increase to 128 kbps where 
ISDN access is used. The data modem uses the existing 
phone line into the home and phone calls cannot be made 
while the data modem is in operation. ISDN is deployed 10 
over a separate facility and provides for two 64 kbps 
channels that can be used for higher speed data access or for 
telephone service based on the CPE provided by the cus- 
tomer. 

The Full Service Network (FSN) described in the com- 15 
mon assignee's application Ser. No. 08/413,215 filed Mar. 
23, 1995, and entitled Full Service Network Having Dis- 
tributed Architecture, will support simultaneous voice, data 
and video on an integrated platform supporting data rates up 
to 6 Mbps. However, these systems are not currently avail- 20 
able for widespread use. In addition the FSN may rely on 
remote terminals (ONUs) which must be located within 
1000 feet of the subscriber and which may involve a cost 
which would deter usage in sparsely populated areas. 

Cable companies have stated an intention to upgrade their 25 
networks with fiber to create smaller distribution areas and 
to create a two-way capability to support data and telephony 
services. Cable modems are predicted to be available in the 
future to provide high speed access over a bus architecture 
to Internet, cached WEB sites, and corporate LANS, using 30 
Hybrid Fiber Coax Architecture with interfaces to the public 
switched telephone network. The speed of the bus can be as 
high as 97 Mbps in the downstream direction and 10 Mbps 
in the upstream direction. Although this bandwidth will be 
shared it is reported to be able to provide a perceivable 35 
difference for the delivery of data services where the server 
is at the cable headend, or where the backbone network has 
been upgraded to support increased speed for interactive 
multimedia applications on the Internet or other Information 
Provider (IP) server locations. 40 

It is an object of the present invention to expeditiously and 
economically satisfy the increasing bandwidth requirements 
of residential customers prior to FSN deployment and prior 
to the availability of the predicted cable services. 

SUMMARY OF INVENTION 45 
The invention constitutes a system and method for pro- 
viding access to on-line multimedia services. Two prominent 
applications supported by the involved network architecture 
are access to Internet Information Providers and access to 50 
corporate Local Area Networks (LANs). 

The system architecture utilizes the available public 
switched telephone network with ADSL loop implementa- 
tion from customer residential units or business premises to 
the telephone central office. According to the invention the 55 
network transports TCP/IP between the Information Provid- 
ers or corporate LANs and the customer terminals, which are 
typically PCs. Routing of user information through the 
wide-area network may be achieved by SMDS and the 
operations data networking is preferably provided by Frame 60 
Relay service, it is a feature of the invention that the TCP/IP 
payload is encapsulated in the routing protocol, such as 
SMDS, but need not be translated or converted. The network 
may be implemented using existing products and network 
services. The end-to-end network includes an infrastructure 65 
comprising the central office and user premises, as well as 
Information Provider components and interfaces. 



4 

The new High Speed Data access Service (HSDS) using 
ADSL will support interactive multi-media applications and 
is capable of complementing all video service delivery 
architectures to provide a full service network capability. 

It is an advantage of the invention that initially the service 
may be supported on existing qualified copper loops which 
are less than 15 kilofeet from the Central Office to provide 
data transport speeds of 1.5 Mbps downstream to a customer 
and 64 kbps upstream. The HSDS will be implemented by 
a connectionless packet data service utilizing Ethernet hubs, 
switches and routers, and the SMDS networks to provide 
access to Internet, corporate LANs, and Data IPs that choose 
to connect to the Telco SMDS service. The service archi- 
tecture will be integrated with a Telco Internet Service 
offering which is comprised of Mini-Hubs and LATA Hubs 
established in key central offices. These hubs will support 
data information services access from customers with analog 
modems, ISDN and ADSL loops, and will administer and 
dynamically assign IP addresses to customers when they 
come on-line. 

Two prominent services having received much current 
attention in the residential market and in the press include 
access to on-line services and telecommuting. Although the 
architecture layout for access to these services is the same, 
differences exist in the applications, user protocols, and 
billing methodologies. 

In providing access to on-line service the end-user will 
use the Telco exchange access service to access an on-line 
Information Provider. The Information Provider may be any 
one of the IPs that currently provide Internet applications. It 
is possible in this service to use one Internet service provider 
to reach another. In response to the need for telecommuting, 
a customer will use the Telco exchange access service to 
access its corporate LAN from home. Since the majority of 
existing corporate LANs use Novell products based on 
transfer of IPX packets, the information exchanged between 
the user PC and the corporate LAN may be carried in IPX 
packets. In this service the Telco customer may be the 
corporation which would be paying the billing for the 
service. The service also includes support for small office/ 
home office (SOHO) environments, connecting these pre- 
mises to larger corporate networks. 

BRIEF DESCRIPTION OF DRAWINGS 
FIG* 1 is a simplified diagram of the Internet 
FIG. 2 provides a simplified illustration of Internet con- 
nectivity. 

FIG. 3 presents an overview of the end-to-end architecture 
of a network that can support access to on-line services by 
either standalone or LAN based computers at customers* 
premises. 

FIGS. 4A and 4B show details of a preferred implemen- 
tation of the ADSL based architecture of the invention. 

FIG. 5 is a diagrammatic illustration of DHCP processes. 

FIG. 6 illustrates the architecture for implementing the 
functionality of FIG. 5. 

FIG. 7 is an illustration of the DHCP to DNS update 
process flow. 

FIGS. 8A and 8B illustrate a modified form of this 
methodology. 

FIG. 9 illustrates the flow inside a requesting PC. 

FIG. 10 is a diagrammatic illustration of a premises 
wiring and access subnetwork according to the invention. 

FIG. 11 illustrates an alternative embodiment of a wide 
area network according to the invention. 
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FIG 12 is a diagrammatic illustration and functional view the left of the router 330 is sometimes referred to as the 

of an ATM network for access to on-line services. ADSL based high speed data access. A mare detailed illus- 

FIG. 13 illustrates an arrangement for maintenance, pro- ° f is provided in FIG. 4. 

visioning and surveillance of ADSL modems. Referring to FIG. 4 there are shown details of a preferred 

FIGS. 14. 14A. 14B and 14C are block diagrams of a 5 embodiment of an implementation of the ADSL based 

preferred network architecture according to the invention. architecture of the invention. The output of an Efcernet 

v „ . .. .„ „ ,. f f , switch 432 is connected to a router 446 which acts as the 

FIG. 15 is a dMgrammaUc iHustraUon of Intanrf/rcrnote wide-area network to its right An Ethernet 

LAN access architecture of a network according to the ^ * a packet switch which encapsulated tcp, 

invention. 10 jp such switches are available from manufacturers 

FIGS. 16Aand 16B illustrate the various NOSs and their guch ^ a$c0 Wd] Hect Ncw Bridge and othcrs ^ 

respective protocols mapped into the OSI layers. Ethernet switch switches the media access control frames, in 

FIG. 17 shows a typical LAN connected to the ADSL ^ instance the MAC frames, which is below the IP 

network. packets. The MAC frames envelope contains the IP infor- 

FIG. 18 shows NOSs software requirements and add!- 15 mation payload which is encapsulated therein. The Ethernet 

tional software tools typically used in such networks. switch switches the envelope without looking at the IP 

FIG. 19 shows the more material minimum hardware packets themselves. The router 446 strips the MAC headers 

requirements for the various operating systems. and looks to the IP packets for routing. 

FIG. 20 tabulates typical software requirements for the The wide-area network could be Internet but according to 

operating systems. 20 the preferred embodiment of the invention is a fast packet 

FIG. 21 shows the latency for downloading a 100 kbyte service provided by theTelco. such as SMDS.The wide-area 

^ ^ e network may comprise the LEC Tele© network only, or it 

FIG. 22 shows latency for downloading a 200 kbyte may encompass an Interchange carrier network in addi- 

compressed image file. w *> n t0 me ^ Tdco nctwork * . t ^ 

As shown FIG. 4, the end-user may be a single PC user 
BEST MODE FOR CARRYING OUT THE at 456 or 458 or a small business or a residential LAN user 

INVENTION at 460. The residential access comprises an ADSL twisted 

Referring to FIG. 3 there is shown an overview of the The access loop is terminated on ADSL modems, 

end-to-ead architecture of a network that can support access w ATU-R and /FU-C at Ae residence and the central office 
to on-line services by either standalone or LAN based respectively . The ^output of the ATO-C is connected to the 
computers at customer premises. At the bottom of the figure Ethernet switch 432. The Ethernet switch bridges the user 
the extended double headed arrows indicate the nature and information frames to to > output port. Xrus fcn^on is oeeded 
locale or premises of each section of the network. Thus to prevent one user's information from being looped back 
consumer premises are indicated at A, Telco premises or 35 to another user for security and privacy considerations. Tte 
equipment at B, Internet Service Provider (ISP) premises or output of the Ethernet switch is connected to the router 446 
equipment at C. and Information Provider (IP) premises or which acts as the gateway to the wide-area network, 
equipment at D. The ADSL bridges shown as boxes 310, 312 According to the invention the Ethernet LAN extending 
and 314 are partially located on the consumer premises and from the router to the customer premises computer is a 
partially on Telco premises. These bridges each comprise a 40 full-time connection intended to be activated or "on" at all 
pair of transceivers with one transceiver of each pair being times. This is in contrast to a dial-up modem connection, 
located on the customer premises and the other located on The very first packet sent by a customer premise computer 
Telco premises, as will be described. Computers 316-324 goes to the router, which reads the packet determines that it 
are also located on consumer premises, as is the LAN 326 is desired to set up a session, and commences the steps to 
which serves the computers 320 and 324. This may be an 45 establish a session as presently will be discussed in detail. 
Ethernet LAN. In FIG. 3 the ADSL bridges are shown as It will be apparent from the earlier discussion of IP 
spanning the dividing line between the consumer premises addresses that no one could remember such numerical 
and the Telco premises. addresses and a directory would be of immense proportions. 

The Telco also has a LAN 328, router 330, DNS server In order to cope with this problem a scheme was devised to 
332 and DHCP server 334. From the router there is a 50 map the IP address numbers against names of a more 
connection via T1/T3 lines 336. 338 to Internet Service descriptive nature. These are known as domain names and 
Providers (ISPs) 1 and 2 indicated as clouds 340 and 341 are sectionalized as are (he IP addresses. However in inter- 
The ISPs have DNS and DHCP servers 344, 346, 348 and preting domain names they are read in reverse fashion from 
350 and are connected by an Inter-AS connection 352. The IP addresses, Le., from right to left. A typical name may be 
Internet portion of the end-to-end network shown at C in 55 john.doe@ba-ati.com or john.doe@hud.gov. The first name 
FIG. 3 is illustrated in more detail in the cloud indicated at may indicate a commercial company named Bell Atlantic 
49 in FIG. 1. and John Doe at that company. The second name may 

The Information Providers (IPs) such as AOL and Com- ideate a government department HUD and John Doe at 
puserve are shown in FIG. 3 at 354 and 356 connected to the that department. Such names are self evidently more man- 
ISPs by Tl lines 358 and 360, The ISPs may be providers 60 ageable that numerical IP addresses and are used in address- 
such as UUNet and PSI connected to the gateway router 330 tog- 

of theTelco, The router in turn is connected via the LAN 328 In order to match names and IP addresses domain name 
to the Telco customers. Each customer can access each of the servers (DNSs) are provided and connected to routers in the 
IPs through their corresponding ISP. In actual practice the network. The computer seeking to establish a session needs 
TLT3 lines are preferably not direct but connected through 65 to know the address of one DNS only and this may be 
a backbone of the switched Telco network such as SMDS, configured into the computers operating system at start up or 
presently to be described in further detail. The structure to it may be placed in a file server by an administrator. 
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In FIG. 4 the Tclco SMDS is indicated by the cloud 410 optical connectivity to remote customers 462 via optical 

connected to a corporate LAN customer indicated generally transceivers 464 and 468 and a small central office indicated 

at 412. The wide-area network has a termination to this LAN generally at 470. Small central offices do not have a separate 

through another router 413 that acts as the interface to the router but are connected to a router at a large CO. The router 

remote corporate LAN. The transport protocol used end-to- 5 receives IP packets from the Ethernet switch and routes them 

end between the end-user and the Information Provider or to respective ISPs/IPs over the Tclco backbone (SMDS. FR, 

the corporate LAN varies but the payload protocol is TCP/ ATM). 

IP. In order to carry IP packets over the access loop, ATU-R Packets are routed to an ISP based on a source address of 

and ATU-C must be equipped with half-bridge or half-router the packet In order to implement this function the various 

functionalities. 10 isp s , here ISP-1 and ISP-2, provide the DHCP with lists 

Legends in the drawing indicate the protocol used at identifying their customers. When a packet comes into the 

various portions of the network, such as lOBaseT, which is router from a consumer premises terminal the router ascer- 

Ethernet using twisted pair. The two transceiver portions of tains the DHCP which ISP database lists that terminal and 

the ADSL modem, shown as ADSL bridges 310-314 in FIG. routes the packet via that ISP. This feature is not necessary 

3, are shown in FIG. 4 as the ATU-R 414-418 located at the 15 in the dial-up modem situation because ambiguities are 

premises of the customer and the ATU-C (Central Office) eliminated by the directory number which is dialed. The 

420-424 located on Telco premises. The ATU-Rs are con- router does not route packets from one customer to another 

nected to the ATU-Cs via POTS lines indicated at 426.430 directly in order to provide security at the network layer and 

providing l.S Mb/s downstream and 64 Kb/s speed protect the rights of the ISPS. The Ethernet switch provides 

upstream. 20 packet filtering at the data link layer. Packets are forwarded 

The high speed data service is transported from the from customer PCs to the router but never broadcast to other 

customer premises to the serving central office over quali- customers, thereby providing security at that layer, 

tying copper loops presently used to deliver POTS service. FIG. 10 illustrates premises architecture and wiring and 

Such a qualifying loop may include bridge taps near the operations interfaces. At the customer premises 1010 and 

customer's premises but must meet 1300 Ohm Revised 25 1012 me copper loops 101 4 and 10 16 carrying the POTS and 

Resistance Design rules. In terms of loop reach, qualifying ADSL signals are looped through the Network Interface 

loops may include 26 gauge copper pairs up to 15 kilofeet Devices (NIDs) 1018 and 1020 placed at the side of the 

in length or 24 gauge copper pairs up to 18 kilofeet in length. home. A two pair loop is installed from the NXD to the 

On the Telco side these modems are connected to an location where the ATU-R is located in the home. Within the 

Ethernet switch 432 through interfaces shown, for example. 30 ATU-R is a passive filter which separates the POTS signal 

as Xans 434-444. The Ethernet switch bridges the user which is then transmitted over twisted pair back to the NTD. 

information frames to its output port This function is needed The POTS line is then connected to the in-home wiring 

to prevent the information of one user from being "looped" extensions at the NID for distribution in the home, 

back to another user for security and privacy considerations. 35 Within the ATU-R. the coded ADSL signal is demodu- 

The output of the Ethernet switch 432 is connected to the and decoded back to a lOBaseT signal and is trans- 
router 446 which acts as the gateway to the wide-area nutted over 4 Pairs to the NIC in the PC. The connection is 
network. The Ethernet switch 432 is connected to the router via an RJ-45 connector. The ATU-R lOBaseT interface will 
446 via a 100BaseT connection. The DNS and DHCP support bridging such that multiple users can share the 
servers 448, 450 are connected to the router 446 via lOBaseT m ADSL lOBaseT port 

connections. The Telco SMDS cloud 410 is connected to the Each ATU-C card is connected to a Maintenance and 
router 446 either via a DS3 or lower speed network. lYom Provisioning Interface Card (M&P-Card) 1022. The M&P 
there the SMDS is connected to Information Providers (IPs) Card collects data from multiple ATU-C cards 1024 and 
452, Internet Service Providers (ISPS) 454, and corporate 1026 in FIG. 10, although more ATU-C cards may be served. 
LANs 412. The Xan interfaces function as media access 45 Alarms and performance data for bom the ATU-R and 
cards or bridges that deal with a level 2 protocol such as ATU-C can be collected and routed from the CO over the 
v35. It takes a v. 35 serial connection coming from the packet network back to the TNM OSS 127. The ATU-C and 
modem and translates it to full Ethernet packet. Thus the the ATU-R may be provisioned and monitored over this link. 
Xan serves simply as an interface between the Ethernet The M&P Cards may generate Simple Network Manage - 
protocol and the v. 3 5 protocol and products other than Xan ^ ment Protocol (SNMP) messages that will be further con- 
may be used. centrated within the office at 129 prior to routing the 
The router connects an extended LAN to the Internet and messages to the TNM OSS and to the WAN-MAC 131. The 
the ADSL modems provide extension of that LAN. Typically concentrating device may generate the TL1 messages that 
a router connects a LAN which, in the network of FIG. 4, has are required by TNM while passing on the SNMP messages 
been extended so that the LAN supports a metropolitan area 55 for usc °y mc WAN-MAC. 

network and constitutes an extended LAN. Hie Ethernet Routers may be controlled and monitored remotely from 

switch 432 provides packet filtering at the data link layer and the network operations center using the SNMP protocol. At 

provides a level of security needed to support that network. the physical layer the interface for operations support of a 

The router receives IP packets from the Ethernet switch and router are the same as the interfaces carrying user data, 

routes mem to prospective ISPs or IPs over the Telco 50 However, SNMP uses User Datagram Protocol (UDP) 

backbone, which may be SMDS, frame relay, or ATM. By instead of TCP. SNMP runs directly above the UDP layer, 

way of example this is shown in FIG. 4 as SMDS. It should Monitoring and control of hosts and servers can be imple- 

be understood that SMDS is illustrated simply by way of mented similarly to those for routers from a remote location 

example and that the backbone may be otherwise using SNMP. 

constituted, as stated. 65 The user data is formatted in IP packets. For remote 

The router 446 is in FIG. 4 serves customers at 456-460 access to corporate LAN applications where the corporate 

over copper circuits while also simultaneously providing LAN uses a non-IP based protocol, such as Novel's IPX, the 
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user data is formatted in IPX. However to have a unified to that computer directly without broadcast The computer 

transport protocol presented to the network for both access receives die IP address from the DHCP server connected to 

to on-line services and remote access to LAN applications. the LAN. then sends an accept or reject message back to 

the IPX packet will be encapsulated within an IP packet each server. The router receives a packet from a computer, 

Thus the data presented to the router at the central office is 5 routes the packet to the appropriate ISP based on its source 

always in IP packets. IP address, i.e., the computer's IP address. 

Before IP datagrams can be sent over the ADSL line. Certain problems are inherent in the existing DHCP 

which is a physical serial interface, a data link layer protocol architectures with respect to the method and system of the 

must operate over mis interface. Point-to-Point Protocol invention. The DHCP cannot by itself now update a DNS 

(PPP) is a suitable protocol for allowing transfer of IP 10 entry. Lc. a DHCP client cannot update its DNS entry 

packets over serial interfaces. As shown in FIG. 4, the user through the DHCP. A DHCP server cannot back up another 

terminal or LAN is connected to a half bridge which in turn, DHCP server. A server-to-server protocol is needed but is 

is connected to the ADSL remote modem, residing at cus- not presently available. A DNS entry constitutes a transla- 

tomer premises. The ADSL modem at the central office is tion of an IP address to a domain and vice versa, 

also connected to a half bridge and the PPP protocol runs 15 According to the invention these deficiencies are over- 

between the half bridges. The pair of half bridges will come by new DHCP capabilities which are provided for 

perform a bridging function on the Media Access Control ADSL implementation. The first of these is based upon the 

(MAC) frames containing the user data. new architecture for ADSL. Thus, according to the invention 

A MAC-layer switch at the CO sends the frames towards a customer is connected to the desired ISP using a Login and 

the router while at the same time preventing the frames from 20 Password mechanism whereby the DHCP server prompts a 

being sent (looped) back to another end-user. The router computer making an IP Request. This mechanism allows the 

strips away the MAC frame headers, extracts the IP data- customer to have more than one Logjnand Password such 

grams and routes them toward the destination using the as one for each BP, which the DHCP server solicits and 

destination address of the IP packets. utilizes. 

It is important that IP packet not traverse multiple carrier B The process of issuing IP addresses today is i based on the 

networks to arrive at the destination, using a shortest path customer's MAC address. A customer is identified by his/her 

method. In particular, the path traversed by the TP packets MAC address but this does not indicate to the server which 

must be confined within the designated access provider (e.g., ISP the customer desires. The MAC address is a physical 

inter-exchange carrier) network. ^ address on the Ethernet card of the customer Tms aa^ss is 

. , . . . , . . , „ . , uniaue to each hardware device and provides an identifier 

Since information is earned in IP packets, the network «"«i u * W ^ WI r 

needs to administer and assign addresses to the IP datagrams for a machine such as a ru. 

for routing of these packets through the network. In addition. According to the invention the DHCP server engages in 

some measure of security and protection of user information an initial exchange with the customer to obtain the customer 

privacy must be in place when this information is trans- 35 name and password. Based on the combination or the MAC 

ported through the network. An end-user in online access address. Login and Password the server can determine 

service may designate an Internet carrier to connect the user which ISP is sought and issue an IP address based on that 

to the IP. In this case, the network needs to ensure mat the total information. The MAC address stays the same for any 

user packets are carried only via the designated carrier. To ISP but the user name and/or the password changes based on 

add new users to the network or remove users from the w the BP desired. 

service, some mechanism is needed to retrieve subscription DHCP servers currently have security problems in that a 

information and update this information as required by customer may attach an unofficial DHCP server onto the 

network management This may be performed by the Simple extended LAN. In this way IP addresses may be issued that 

Network Management Protocol (SNMP) now available in are already assigned to other customers or computers. This 

the Telco network. 45 problem may be overcome according to the invention by 

ReferrrngtonaSmereisadiagranmiaticmustrationof incorporating encryption and authentication between the 

the existing DHCP process. When the computer 510 or 512 DHCP server and customer computer. Thus, a customer PC 

initially comes on-line it does not have an Internet address. will not accept an IP address from a server unless the server 

It broadcasts a signal indicating this and requesting an identifies itself to the PC as a valid server. 

Internet address. The DHCP server 514 hears the message so The implementation of these improvements requires 

and offers an IP address for a certain time period which may modification of current DHCP software for both the cus- 

be determined by the PC or the server. This temporary tomer equipment and the server. In the modified and 

assignment of addresses by the DHCP is necessitated by the improved form the customer premise equipment such as a 

impracticality of maintaining databases of million of IP PC. is identifiable either physically or through software. In 

addresses. Thus, arc could be leased an address for an hour, 55 addition the user must supply at least one personal identifier 

a day, a month or permanently, as determined by either the entered into the PC. Thus one identifier is prestored and the 

PC or the DHCP server. The PC may request a specified time other is entered by the user. This methodology is utilized as 

period and the DHCP may decline and offer a longer or part of the dynamic addressing functionality in the DHCP 

shorter period, seeking mutual agreement This procedure is server. This not only ensures that the customer is authorized 

diagrammaticaUy illustrated in FIG. 5. 60 but also facilitates openness of the platform. 

The DHCP server provides customers with a temporary IP Through this mechanism the DHCP server is able to 

address from a pool of addresses given by the ISPs. When identify a pool of addresses for search. In a simple case of 

a computer comes on-line it broadcasts a DHCP request in two ISPs, one pool of addresses is related to ISPl and 

the LAN asking for an DP address from any DHCP server another pool of addresses is related to ISP2. Depending upon 

attached to that LAN. The DHCP server receives the request 65 the selected ISP the server is able to select the correct pool 

authenticates the requesting computer based on its MAC of addresses and all routing then takes place through the 

address, pulls an IP address from its database, then sends it selected ISP. In the preferred enujodiment of the invention 
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the procedure executed by the customer PC and DHCP 
server includes an exchange of MAC address, user name, 
and password. Different layers may be added depending 
upon the number of ISPs and the latitude of choices to be 
provided to the customers. 

A customer may have the same password and the same 
user name but possess two different PCs. such as a desktop 
and laptop. In one implementation the MAC address may be 
used to identify the computers, although other computer 
identifiers may be provided and utilized. In a network 
context, this is based on the computer's Ethernet card. Some 
computers may have two Ethernet cards and may be con- 
nected to two networks. However, each Ethernet card will 
have its own unique identifier. According to the invention 
the DHCP server engages in an exchange with the customer 
computer and translates the information into the desired 
connection. 

In serving this purpose the DHCP server is provided with 
an intelligent or relational database. The improved DHCP 
also incorporates a billing capability. Thus the DHCP server 
has incorporated therein a protocol or clocking mechanism 
whereby the assigning of an IP address starts the clock far 
charging the customer. When the IP address is released 
tolling of the charge ceases with a time based stamping 
attributed to the IP assignment 

In order to provide security the DHCP server arrangement 
used pursuant to the invention utilizes asymmetric encryp- 
tion authentication. This may advantageously be in the form 
of a public key encryption and authentication using MD5 
protocol. MD5 is a public key/private key protocol which is 
compact and permits incorporation of the public key within 
the DHCP packet This architecture permits the user to 
verify the authenticity of the server and to determine that it 
is the correct server for its information. The user may 
encrypt his/her information and send it to the authenticated 
server, which is the only device that can decrypt the infor- 
mation. The arrangement serves the dual purpose of authen- 
tication plus information security. 

The Domain Name Service (DNS) server provides the 
translation from a domain name into an IP address. Since 
each site maintains its own server no single site on the 
Internet is in possession of all of the translation data. The 
overall data constitutes a distributed database and relies on 
the servers at the individual sites. Access to the DNS is 
through a re solver and software library functions: gethost- 
byname; gethostbyaddr. The function gethostbyname takes a 
Hostname and returns an IP address. Hie function gethost- 
byaddr takes an IP address and returns a Hostname. FIG. 6 
illustrates the architecture for implementing this function- 
ality. Referring to that figure there is shown a customer or 
client PC 610, a local DNS server 612, a remote DNS server 
614 and a server/host 616. The method is as follows, with 
the numbered paragraphs corresponding to the numbered 
broken lines in FIG. 6: 

1. The application on the PC 610 sends a DNS Request to 
the local or first DNS (DNS1) to look up the server. The 
message format may be: [Locate (serverjtyz.com)]. 

2. The first DNS (DNS 1) 612 cannot locate the server and 
sends a request to the second DNS (DNS2) 614 asking it to 
locate the server and send the results back to the PC 610. The 
message format may be: [Locate (serverjcyz.com); Send- 
Results (clientisp.net@ 120. 130.1.156)]. 

3. The second DNS (DNS2) 614 locates the server 
(server.xyz.com@164.109.211.239) and sends a message to 
the PC 610. The message format may be: [(serverj5yz.c0m) 
Is-Located<8> 164. 109.2 1 1 .239], 
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4. The application on the PC 610 contacts the server 616 
at 164.109J11.239. 

FIG. 7 provides an illustration of the DHCP to DNS 
update process flow. Referring to that figure the PC is 

5 indicated at 710, The DHCP server is shown at 712. The 
DNS server is shown at 714 and the host is indicated at 716. 
As illustrated in the drawing, the first step occurs when the 
PC goes on-line. In the second step, there is a DHCP Request 
to the DHCP server saying "I need an IP address." The 

10 DHCP server responds with the verification and authentica- 
tion previously discussed, i.e.. the public key/private key 
authentication and encryption of communication. The PC 
sends the user name or Login and the Password and possibly 
the MAC address. The DHCP server responds with the IP 
address which the PC may accept or decline. The possibility 

15 of a decline exists because there may be multiple DHCP 
servers on-line and the PC may receive multiple IP 
addresses. It would accept one address and decline the 
remainder. This portion of the exchange is preferably 
encrypted to maintain security of the Login name and 

20 Password. 

Following the IP "Accept" a DNS Update occurs. The 
DHCP server informs the DNS server that for the period of 
validity of the IP address for the PC 710 this name belongs 
to this IP address. The DNS server thereupon signals the PC 

25 that the DNS is updated. The DNS server 714 now knows 
the domain name of the PC 710 which stays with the user. 
The DNS server also knows that this address is assigned to 
the PC 710 for the length of time assigned by the DHCP 
server. At the termination of that time the assignment expires 

30 in the absence of another update. 

At this point reference is directed to FIG. 8 which 
illustrates a modified form of this methodology in further 
detail. The User is illustrated at 810. the PC/Client at 812. 
the DHCP server at 814, the DNS server at 816. and the 

3J ISP/IP/Server/Other Client at 818. Following the flow dia- 
gram from the top, the user boots the system, the system or 
PC comes back and requests a user name and password, the 
user types the user name and password, and the system 
perforins a DHCPDISCOVER. The DHCPDISCOVER step 
is a broadcast to all of the DHCPs in the area, i.e., the local 

40 area network. The DHCPOFFER comes back and the 
PC/Client does a DHCPREQUEST for that IP, ie., "Yes, I 
want that IP." The DHCP server sends back an acknowl- 
edgement DHCPACK. meaning *1 acknowledge that you 
want that IP." The DHCP server then does a DHCPUPDATE 

45 to the DNS and the DNS sends back an acknowledgement 
DNSACK to the DHCP. 

Referring to the left-hand portion of FIG. 8. there is 
shown at 820 the DHCP packet protocol as given by the RFC 
by IETF. This packet at the bottom contains a portion labeled 

50 OPTIONS. The OPTIONS portion is 312 octets which is 
equivalent to 312 Bytes, or in regular terminology. 312 
characters or keyboard strokes. Within these options are 
encapsulated the user name, the MAC address, and the 
public key/private key. These packets travel back and forth 

55 between the DHCP and the PC and without modification 
contain the above desired information. This now unique 
packet constitutes the DHCP packet It provides a software 
vehicle which can be utilized with existing hardware and 
occurs in the DHCPDISCOVER step using existing proto- 

60 coL Similarly the DHCPOFFER represents the DHCP server 
presenting its credentials to the PC client representing that it 
is a valid DHCP server. This may be the public key. The 
DHCPACK is followed by the DNSUPDATE and the 
responsive DNSAOC This constitutes the process of boot- 

65 ing up and obtaining and IP address. In the second stage 
following the acquisition of an IP address the user starts an 
application. 
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In the next step the user starts an application and the PC DHCPREQUEST seeking a renewal at 922. Upon receipt of 

does a DNSREQUEST for a specific server. The DNS the DHCPACK the BOUND stage is renewed and continues, 

replies back to the PC/Client and the PC/Client requests the If a DHCPACK is not revived and 87.5% of the time has 

Xmation from the ISP/IP/Server/Other Client and expired another DHCPREQUEST is sent If an acknowl- 

receives an information reply. At this point it is possible for 5 edgment is returned reb.nding occ^s and^ BOUND 

j. m * .u t. .„ n,« condition continues. In the absence of an acknowledgment 

registration for anyone to contact the PC/Client and for it to 10 protocols $Q% of \ caS e< 87.5% of lease and 100% of lease, 

act as a server. The 100% of lease is indicated by the Lease Expired 

In the fourth stage there is illustrated the procedure if the DHCPNACK from the rebind 924. If the user chooses to 

user desires to use a different Internet service provider. To terminate prior to the expiration of 100% of the lease time 

accomplish this he/she clicks on this application and pro- a DHCPRELEASE is performed from the BOUND coodi- 

vides to it a different user name and password. The appli- 15 tion to Initialize to cancel the lease. If the request for lease 

cation on the PC does a DHCPRELEASE to the DHCP. This renewal at the 50% time period is denied the system per- 

releases the former address, triggers a DNS UPDATE and forms a DHCPNACK and the usage of the particular IP is 

commences a new process of DHCFREQUESTs. The first terainated. The PC could re-initialize and seek a new 

DHCPREQUEST previously discussed occurred as a result address. 

of the original bootup. The present DHCPREQUEST occurs » In the packet illustrated in FIG. 8, everything down 

without re-booting, and this identifies the new ISP. The through BOOT FILE NAME constitutes standard unen- 

DHCPDISCOVER, DHCPOFFER, DHCPREQUEST and crypted packet The data significant to operation of the 

DHCPACK are thereupon repeated followed by a DNS invention is contained in the option field in a wholly or 

update. In the fifth andfinal stage the user terminates the partially encrypted state. Such encryption does not occur in 

work and the PC performs a DHCPRELEASE. A DNSUP- » current DHCP rrocesses. Nor is the option field utilized for 

D^curs andfte ^releases the IP address and the IP the new purposes. This unique arrangement r^a use of 

. , . r\ , existing standards to a maximum extent while adapting 

associated with the domain name. s ^ ndard$ t0 perform new steps to secure new results. 

In the DHCPOFFER to the PC the public key/private key encryption i ogm and password for the DHCP servers 

relationship is utilized. The server possesses the private key m the manner described is unique as is the intelligent 

which it retains confidential. However, the public key is database on the DHCP server managing different types of IP 

provided publicly. If a user or PC encrypts information using addresses from different pools and controlling them, 

a public key the only way anyone else can decrypt this Network management allows a manager to monitor and 

information is to use the private key. However, since the control routers and hosts in the network. A network manager 

owner is the only one who has the private key security is ^ nccdfi to acccss information on system configuration, faults, 

provided. performance data, security, and usage of resources in an 

This provides one way security. If a third party sends a underlying transport network (or networks). Moreover, the 

user information encrypted using the user's public key, the manager needs to control the systems by changing attributes 

user is the only one who can decrypt it As an example of the or attribute values within the network elements such as 

usage, the PC of the user has the public key. It encrypts the ^ routers. 

discover message including its user name, password, MAC Configuration management pertains to setting up the 

ID, ISP selection, and whatever else may be included for necessary parameters in systems to provide an expected 

encryption with the public key. The DHCP uses the corre- service or set of features. Fault management is related to 

sponding private key to decrypt that and read the informa- inspecting the health of the network by detecting system 

tion. In the reverse direction the PC knows the public key. 45 failures, isolating failures and learning where the failure 

If the server sends a message encrypted with the private key occurred, and verifying whether the failed system has recov- 

and the user is able to decrypt the message using the Performance monitoring allows the manager to deter- 

available public key it means that the message is authentic mine whether a service is being provided with expected or 

from the owner of the public key. This authenticates the degraded quality, whether a system is overloaded by offered 

sender. The process is compUmentary or reversible. If you ^ traffic, or when a system needs to be upgraded. Security 

decrypt with one you encrypt with the other. Messages from management enables the manager to find out whether the 

the DHCP are not broadcast, but are filtered by the Ethernet network is being used by authorized users. Finally, usage 

switch so that it arrives at the intended user only, i.e., to one monitoring provides information on which user is using the 

twisted wire pair. This provides another level of security. All network and how much resource is being used by the user, 

valid DHCP servers exist physically at the Telco premises J5 an( j whether the network needs to be re-engineered to grow 

and are accessible to Telco personnel only. m size. 

FIG. 9 illustrates the client/PC process during the DHCP Unlike network element management which needs local- 
Request step. Starting at 910 at the left side of the figure the system operation information and relies on lower layer 
boot is initiated and the system goes into an initialize stage ( e .g M jink layer) protocols, network management protocols 
at 912 and does a DHCPDISCOVER. This sends a messa ge ^ operate at the application level. This is because the network 
to everyone on the server. Once it gets a DHCPOFFER at manager oversees components across entire networks or the 
914 it goes from select 916 to DHCPREQUEST at 918. The internet which consists of heterogeneous networks intercon- 
acknowledgment DHCPACK is returned and it proceeds to nected by routers. Operating an application laser protocol for 
a stage called the BOUND stage at 920. network management has the advantage that the manager's 

The BOUND stage persists as long as the PC is on-line 65 computer console does not have to be connected directly to 

and has an IP. It remains in the BOUND stage until 50% of all physical systems and networks that contain managed 

the Lease time expires, then the PC performs another entities. 
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Simple Network Management Protocol (SNMP) is the mitted over the copper loop to the ADSL Terminal Unit 

most widely used network management protocol in data Remote (ATU-R) 1030-1032 at the customer's premises, 

networks. It is based on TCP/IP protocols (e.g.. UDP) for The Ethernet switch acts as a hub concentration point for 

transport. SNMP operates on the basis of a client-server HSDS users served from the CO. The Ethernet switch has 24 

model where the program running on the network manager's 5 ports allowing for 23 to one concentration. The switch is 

computer acts as the client and the software running on a stackable such that 192 lines can be concentrated onto a 

network element (e.g., a router), called a management agent single bi-directional port to the Gateway Router which may 

acts as the server. By sending queries and commands via its be in a different central office. The remote Ethernet Switch 

local computer, the manager can obtain information or send hub is connected to the Gateway Router Hub central office 

commands to affect changes in the network element SNMP 10 via an interoffice single mode optical fiber transport link 

comprises simple and limited messages pertaining to com- supporting lOBaseT Ethernet transport as shown in FIGS, 

munications between the client software running on a man- io and 4. The Gateway Router 1034 may interface with the 

ager's computer and management agents. These messages Ethernet Switches/Hubs via a RJ-45 cable. The router per- 

allow read operations for monitoring systems, write opera- forms address administration and may be linked to a Domain 

tions for system control and enable searching tables, as well 15 Name Server 1036 and a DHCP Server 1038 required for 

as setting systems to report abnormal conditions. routing of TCP/IP messages across the network. The Router 

A separate standard known as Management Information may be connected to the SMDS network via a DS3 line (34 

Base (MTB) defines the management data objects which a Mbps) to support the High Speed Data Service speed 

network element (e.g.* router) must maintain and the opera- requirements. The SMDS Network is a network of SMDS 

tions that are allowed on these objects. MTB has a tree- like 20 capable switches that use the Distributed Queue Dual Bus 

structure with a hierarchical name space administered by (DQDB) protocol for inter-switch communications. 

ISO and ITU which allows globally unique object identifi- Operations support for HSDS can be divided into three 

ration. areas: Network element monitoring and failure analysis. 

In SNMP all operations occur as a result of the manager customer interface/software problems, and Data Information 

reading a value from a managed object or storing a value in 25 service Provider problems. When a service failure occurs, 

an object SNMP also has authentication and authorization the customer will either call 611 or a number that will direct 

mechanisms to ensure particular network elements are moni- him to the Infospeed center. The personnel at the Infospeed 

tared or controlled only by authorized managers. center will try to determine whether the problem is a 

For the network architecture under study, there will be a Customer Premises Equipment/Software Interface type of 

central network manager at the Network Operations Center. 30 problem or a Network Problem 

Additional management sites with lower or more limited ATclco Broadband Services Center (BSC) may monitor 

levels of authorization may exist in LATA hubs. the ADSL nerworK elements via the TOM system. TNM 

The wide-area network (WAN) may consist of the Telco allows the BBSC to view the alarm history (provided N via 

SMDS network and an interexchange carrier fast packet „ me TL1 Messages from the MAP Concentrator) and to 

network. Alternatively, instead of an interexchange carrier observe the current status of the ADSL transceiver equip- 

an Internet carrier network may be used. Where the desti- rnent and to determine if the ADSL's are in trouble. The 

nation site, whether an ISP or a corporate LAN, happens to BSC also works with the maintenance forces to aid in 

reside within the same LATA as the gateway router, the trouble isolation. 

WAN comprises only the Telco network. Data may initially m A Wide Area Network-Maintenance Administration Cen- 

be offered to the Telco SMDS network at 1.5 Mbps and 34 ter (WAN-MAC) will monitor the Gateway Router, Ethernet 

Mbps rates. Switch and have visibility of the ADSL equipment As 

The WAN always terminates in a router at the ISP site or previously described with reference to the Access 

the corporate LAN. FIG. 4. shows various alternatives of Architecture, ADSL Alarm information is collected via the 

WAN for this architecture. 45 MAP Device and transmitted to a concentrator in the SNMP 

Where the SMDS network terminates on a router of an format The SNMP messages are translated into TL1 and 

Internet carrier, the router retrieves the IP packets from the transmitted via the Packet Data network to the TNM-OSS. 

SMDS payloads and transfers the IP packets towards the SNMP messages are also passed through the concen- 

destination. trator to the WAN-MAC where the performance and status 

If an interexchange carrier is used and this carrier is using 50 of * c ADSL units can be observed The Concentrator is also 

a fast packet service other than SMDS (e.g.. Frame Relay or available to collect performance and alarm information for 

Cell Relay), the gateway to the interexchange carrier must ^ Router and Ethernet Switch. However, a separate 

terminate SMDS, retrieve the IP and then transmit the IP router used t0 this to the WAN-MAC. 

packets via the fast packet service. The Infospeed center will determine if the Customer's 

At the CO. the ADSL Terminal Unit - Central office 55 computer terminal or software is the source of the problem. 

(ATU-C) is connected via twisted pair to the voice switch via u required a technician will be dispatched to resolve the 

a rnainframe connection as shown in FIG. 10, The ATU-C problem. Infospeed will also determine if the DIP is the 

card is also directly connected to an Ethernet Switch 1028 source of the problem and advise the customer of the 

via a 4 pair lOBaseT connection. The ATU-C Packet filtering appropriate action to take. 

capability will prevent intrusion of traffic from unauthorized 60 An architecture for maintenance, provisioning, and sur- 

sources including the prevention of broadcast packets from veillance of ATU-C and ATU-R ADSL Cards is illustrated in 

users flooding access links mdiscriminately. Within the FIG. 13. 

ATU-C. the lOBaseT signal is encoded and modulated into Billing options are dependent on accounting mechanisms 

an ADSL signal at a certain frequency at 1.5 Mbps for to measure the amount of network resources used. An 

transmission over a qualified copper loop 1014-1016. The 65 end-user may be charged a fixed amount for using the access 

telephone signal from the voice switch is frequency multi- subnetwork, if the loop usage is not shared among multiple 

piexed with the ADSL signal within the ATU-C and trans- customers. Billing for network usage in its simplest form is 
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flat-rate based whereby network customers pay a fixed 
amount monthly for using the network. More accurate 
billing approaches may rely on tracking the amount of user 
traffic throughput that is carried by the network. 

In Synchronous Transfer Mode (STM) techniques where 
a channel (e.g.. 64 kbps) is dedicated to one user per duration 
of a call, billing may be based on occupancy which is the 
time the user is utilizing a network channel. In packet data 
networks and more specifically, connectionless services 
such as TCP/IP. channel capacity is not fixed as the size of 
the packet may vary depending on the user capacity require- 
ments. Moreover, unlike connection oriented services where 
usage parameter negotiation on quality of service and chan- 
nel capacity precede data transfer, thereby allowing the 
network to register the channel capacity for the session, 
connectionless services send channels to the network with- 
out prior notice as to the amount of channel capacity 
required. 

Some fast packet switches such as those for SMDS 
support a credit-based algorithm as an admission control 
policy to limit the carriage of the user traffic to a previously 
established contract However, currently available routers 
are not equipped with this capability. In the interest of 
expedition initial billing for using the network may be 
flat-rate based. 

FIG. 14 illustrates a basic HSDS network. The network 
may include up to 500 (total) residential subscribers 
1410-1412 in four (4) central offices 1424-1430 in one 
intrastate locale. One of these COs 1424 will serve as the 
Gateway Router Hub 1432 location where the 
authentication, authorization, and connections will be estab- 
lished for each session. Access to the SMDS Metropolitan 
Area Network 1434 will be through the gateway Router at 
mis CO. An Ethernet Switch 1436-1442 will be installed in 
each of the offices. A High Speed, single mode fiber, point 
to point transmission system will connect the Ethernet 
switches in each remote office with the gateway router in the 
GatewayRouter Hub location. 

Up to 500 ADSL ATU-Cs 1444-1454 will be installed 
among the 4 offices. The ATU-Cs will be installed 14 to a 
shelf, and 28 to a rack. There may be 3 racks to a bay of 
equipment (6 shelves). For each 28 ATU-Cs mere will be 
one M&P Interface Card. There will be one M&P Concen- 
trator per office supporting both TNM with TL1 messages 
and the WANMAC System with SNMP messages regarding 
the ADSL equipment 

As illustrated in FIG. 10 the ATU-Cs will interface to the 
POTS switch via twisted pair and to the Ethernet Switch via 
4 twisted pairs. The ATU-C will encode and modulate the 
Ethernet signal and passively frequency multiplex the two 
signals together for transmission over the twisted pair cop- 
per loop. At the customer's premises the twisted pair loop 
will be extended past the NHX into the customer's home to 
the PC location where the ATU-R will be located. The POTS 
splitter will be located in the ADSL device. The POTS signal 
will be routed back to the NID where it will be distributed 
within the home over existing premises wiring. The 
extended ADSL loop will require a new cable consisting of 
two pairs from the NID to the location of the ATU-R. The 
ATU-R will have a lOBaseT interface with bridging func- 
tionality that will support multiple users at the home loca- 
tion. The ATU-R will be connected to the Ethernet card in 
the PC via 4 twisted pairs using an RJ-45 connector. 

Software will be installed in the PC that will allow the 
user to be connected to DIPs via the Gateway router. When 
a user launches a service request, the router will assign the 



0,548 

18 

user an IP address from a pool of addresses provided by the 
Internet Access Provider of choice. 

The Residential Customer will be able to access Internet 
Providers that have purchased SMDS links to the Telco 

5 SMDS Network. The Gateway Router wUl perform 
Authentication, Authorization, and Billing functions for the 
Internet Provider as part of the process of assigning an IP 
Address to the Customer. 
Telecommuters will also be able to access corporate 

10 LANS remotely via this network. A typical basic network is 
illustrated in FIG. 14. The Owner of the corporate LAN must 
purchase an SMDS link such that the tdecommuter can 
remotely access the Corporate LAN over the HSDS Net- 
work. Access to the corporate LAN will be similar to the 
access to the Internet Providers in that the router will only 

15 allow validated customers access to the Corporate LAN. 
FIG. 15 illustrates how a telecommuter would access the 
corporate LAN over the SMDS/Frame Relay or ATM net- 
work. 

FIG. 15 provides a high level view of the Telco Internet/ 

20 Remote LAN basic network. The Fairfax network hub 1510 
and its Network Gateway Router 1512 are connected to the 
SMDS Network 1514, Access Mini-Hubs 1516-1518, and 
the Telco router and servers at the Telco Web site 1520. The 
corporate LAN 1522 serves as a corporate mini-hub. 

25 The customer computer environment can be divided into 
two categories, namely. Standalone and Network based. 
Both of these environments can exist for businesses and 
homes. The Standalone environment is the most common 
environment found at homes. Customers tend to use their 
home computers to connect to public networks such as the 
Internet, CompuServe and America Online (AOL). Only a 
small percent of these customers use their home computers 
to telecommute to work. 

35 Home computers are a common item in today's house- 
holds. It is estimated that 30% of homes have personal 
computers. Of these it is estimated that about 87% of home 
computers are PC based running a version Microsoft Win- 
dows (3.1. 3.11, NT, or 95), 11% are Macintosh based 

40 running System 7, and the rest (2%) run other operating 
systems such as IBM-OS 12 and SCO-UNE. Most of these 
computers connect to public networks via a Dial-Up or an 
ISDN line. 

The Network based environment is typically found in 

45 businesses. Most businesses today, small or large, have some 
sort of a network in place. These networks vary in sizes and 
characteristics. Some networks span over the enterprise, 
others are local and isolated. These networks run various 
types of Network Operating Systems (NOS), such as, UNIX. 

50 WindowsNT, and Novell Netware. They also have different 
topologies such as Ethernet and Token Ring. Each NOS uses 
different protocols for communications. FIGS. 16A and B 
show the various NOSs and their respective protocols 
mapped into the OSI layers. All of these protocol can 

55 support TCP/IP protocol suite. FIG. 17 shows a typical LAN 
connected to the ADSL network. FIG. 18 shows NOSs, 
software requirements and additional software tools typi- 
cally used in such networks. 
There are hardware and software requirements for the 

60 standalone systems connected to the ADSL Network. FIG. 
19 shows the more material minimum hardware require- 
ments for the various operating systems, while FIG. 20 
tabulates typical software requirements for the systems. 
With respect to performance the throughput of the access 

65 subnetwork is dependent on the throughput capacity allowed 
by the ADSL technology minus the overhead used in TCP/IP 
for data transmission. 
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As discussed previously, the down stream bit rate of tions. It is similar to TDM io that it uses fixed-size units of 
ADSL may be 1.5 Mbps and the upstream bit rate achieved information transport It is similar to packet data commu- 
may be 64 kbps. Preliminary tests have indicated that the nications (e.g. . X.25. Frame Relay) in that the ATM cells just 
maximum throughput achievable when running TCP/TP is like data packets carry the address information in their 
600 kbps. Because there is no flow control mechanism in 5 headers. ATM also provides for defining explicit and 

UDP. preliminary tests indicate a maximum throughput of 1 implicit loss and delay priorities for information transport 

Mbps using UDP. With these properties, ATM becomes the choice technology 

To achieve higher downstream throughput using the for transport of multimedia services. 

ADSL loop technology, the WANs throughput must be such Existing networks may transition to ATM through several 

that no bottlenecks are presented by the network. Using 34 10 phases. In the initial phases, ATM may be introduced in the 

Mbps SMDS access rates for the WAN will meet this backbone networks as an efficient highspeed means of 

requirement Thus the SMDS network may operate at the information delivery. In later phases. ATM may become an 

data rate of 34 Mbps. end-to-end information transport network. 

Assuming that the WAN is operating under normal con- With respect to the use of ATM in the Wide-Area 

ditions and is not congested, the access throughput over the 15 Network, fast packet technology products such as ATM edge 

ADSL line can be used as the throughput of the end-to-end devices and ATM routers currently exist. These products 

connection. Two examples to calculate predicted terminate on an ATM wide-area network but use legacy 

performance, one for the remote access to corporate LANs, protocols (e.g., IP) to communicate with the Customer 

and the other for access to IPs are illustrative. Premises Equipment (CPE). This first phase in transition to 

For the remote access to LAN application it is considered 20 an ATM network may occur by replacing the gateway 

that downloading a file with the size of 100 kbytes is desired. routers with ATM routers. This phase is very similar to the 

For the access to an IP, a compressed image file with a size network architecture diagram shown in FIG. 4 except that 

of 200 kbytes is assumed to need to be downloaded. Cal- the wide-area network will be an ATM network instead of an 

culations of performance in terms of latency for download- SMDS network 

ing these files, using analog modems operating at 28.8 kbps, 25 Introduction and penetration of ATM terminal equipment 

ISDN with bonding the two B-channels (i.e., 128 kbps). and and loop access technologies supporting ATM provides the 

ADSL are performed. For ADSL, both TCPm and UDP/IP basis for realization of an end-to-end ATM network 

are considered for data transfer in the telecommuting appli- ATM is based on transporting units of information called 

cations. 3Q ATM cells that comprise of 53 octets with the first 5 octets 

In remote access to a LAN, the objective is for the remote used as header. Thus, about 10 percent of capacity trans- 
terminal to experience approximately the same latency as a ported in each ceil is used as overhead. To make efficient use 
local terminal, when downloading a file. Assuming an of ATM, the underlying physical facility used to carry ATM 
Ethernet LAN with a shared bus speed of 10 Mbps, an cells needs to have transport capacity greater than 1.5 Mbps. 
effective throughput of 2 Mbps can be expected when the 35 Carrying a single ATM cell per the frame period of an 
LAN is lightly to moderately loaded. Thus, a local user will underlying physical facility (i.e., 125 us) requires an infar- 
be able to download a file at a speed of 2 Mbps. FIG. 21 mation payload of 424 bits. The frame capacity of a Tl 
shows the latency for downloading a 100 kbyte data file facility including the framing bit is 193 bits. Work is in 
using analog modems, ISDN, and ADSL with TCP/IP, and progress in ATM Forum and other standards bodies to 
ADSL with UDP/IP. ^ specify physical interfaces with rates below 45 Mbps. These 

For access to ISP files an example of downloading a rates include 51 Mbps. 25 Mbps. and 6 Mbps. 

compressed image file that has a size of 200 kbytes is Transmission of 25 Mbps or 51 Mbps over twisted pair 

compared to the latency for downloading this file using copper loops limits the reach of the loop to less than 600 ft 

analog modems. ISDN, and ADSL with TCP/IP. FIG. 22 This becomes a viable access subnetwork alternative when 

compares the transfer delay experienced using each of these 45 it is used in conjunction with optical fiber transport from the 

techniques. curbside to the central office. Without the Fiber To The Curb 

Transport of operations data may be realized by a frame (FTTC) technology mis transmission speed presents limita- 

relay network. As shown, the Wide Area Network (WAN) in tions from the carrier serving area perspective. 

FIG. 11, frame relay Permanent Virtual Circuits (PVCs) will Two additional technologies are under development for 

be configured to connect the networks and components of a M digital loop access for ATM. They include Very high bit rate 

mini-hub and the LATA hub to a centralized operations Digital Subscriber Line (VDSL) with downstream informa- 

center. These PVCs will carry operations data to the central tion carrying capacity of 6 Mbps and Inverse Multiplexing 

operation center. This network operation center will have a of 6 Tl lines to provide 9 Mbps of capacity. Current 

global view of the network to check its health and monitor estimates indicate that VDSL can have a loop reach of up to 

alarms. 55 5000 ft. With Inverse Multiplexing of Tl lines, the loop 

Where operations data needs to traverse more than a reach will not be distance limited as Tl facilities can use 

single LATA, it will be carried via an inter exchange carrier repeaters. 

frame relay service. Frame Relay Network-to-Network FIG. 12 shows a functional view of the end-to-end ATM 

interfaces have been standardized and are commercially based network for access to IPs and corporate LANs. It 

available today, allowing interconnection of different carri- 60 should be noted that in the network shown, the user termi- 

ers' frame relay networks. The data rate of FR PVCs nals (e.g., PCs or hosts) terminate ATM. 

carrying operations data may be 56 kbps. it will be readily seen by one of ordinary skill in the art 

With the c omm e r cial rollout of ATM technology and that the present invention fulfills all of the objects set forth 

products, ATM will assume an increasing role in the delivery above. After reading the foregoing specification, one of 

of multimedia information including high-speed data sex- 65 ordinary skill will be able to effect various changes, substi- 

vices. ATM as a technology combines the advantages of tutions of equivalents and various other aspects of the 

Time Division Multiplexing and packet data communica- invention as broadly disclosed herein. It is therefore 
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intended that the protection granted hereon be limited only 
by the definition contained in the appended claims and 
equivalents thereof. 
We claim: 

1. A data network comprising: 

a wide area data internetwork (Internet); 
a plurality of customer premises processor terminals; 
a plurality of information providers connected to said 
Internet; 

a plurality of Internet service providers providing selec- 
tive connection to information providers via said Inter- 
net; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 
nals and said information providers and said Internet 
service providers; 

said public switched telephone network including a tele- 
phone Internet service provider network which 
includes: 

a router connected by asymmetric digital subscriber 
line (ADSL) to said customer premises processor 
terminals; 

a domain name service server connected to said router; 

a dynamic host configuration protocol server connected 
to said router; 

a switched data network connecting said router to said 
Internet service providers and said information pro- 
viders; 

said telephone Internet service provider network using 
TCP/IP protocol for connecting to said Internet service 
providers and said information providers and using 
protocol other than TCI/IP protocol within said 
switched data network and in connecting to said cus- 
tomer premises processor terminals; 

said telephone Internet service provider network provid- 
ing to customer premises processor terminals dynamic 
assignment of temporary Internet addresses and 
domain name translations when said customer premises 
processor terminals come on-line. 

2. A network according to claim 1 wherein said other 
protocol encapsulates said TCP/IP protocol intact 

3. A data network comprising: 

a wide area data internetwork (Internet); 
a plurality of customer premises processor terminals; 
a plurality of information providers connected to said 
Internet; 

a plurality of Internet service providers providing selec- 
tive connection to information providers via said Inter- 
net; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 
nals and said information providers and said Internet 
service providers; 

said public switched telephone network including a tele- 
phone Internet service provider network which 
includes: 

a local area network (LAN) connecting said customer 
premises processor terminals to a control node in 
said LAN through asymmetric digital subscriber line 
connections; 

a router connected to said node; 

a domain name service server connected to said router, 

a dynamic host configuration protocol server connected 
to said router; 

a switched data network connecting said router to said 
Internet service providers and said information pro- 
viders; 
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said telephone Internet service provider network using 
TCP/IP protocol for connecting to said Internet service 
providers and said information providers and using 
protocol other than TCP/IP protocol within said 
s switched data network and in connecting to said cus- 
tomer premises processor terminals through said LAN; 

said telephone Internet service provider network provid- 
ing to customer premises processor terminals dynamic 
assignment of temporary Internet addresses and 
io domain name translations when said customer premises 
processor terminals come on-line. 

4. A data network according to claim 3 wherein said node 
comprises an Ethernet switch. 

5. A data network according to claim 3 wherein said 
15 connections between said node and said customer premises 

processor terminals are dedicated connections. 

6. A data network according to claim 3 wherein said 
customer premises processor terminals create internetwork 
protocol (IP) packets with IP addresses encapsulated within 

20 a media access control (MAC) protocol layer with a MAC 
address and send such packets to said node. 

7. A data network according to claim 6 wherein said node 
recognizes the MAC layer address and sends said packets to 
said router. 

25 g. A data network according to claim 7 wherein said router 
recognizes said IP address and directs such packets to said 
switched data network pursuant to said IP address. 

9. A data network according to claim 8 wherein said router 
encapsulates said IP packet in a protocol layer and address 

30 which corresponding to the protocol used in said switched 
data network, said last named address directing the encap- 
sulated packet to the same destination as indicated by said IP 
address. 

10. A data network according to claim 9 including a 
35 second router which strips said switched data network 

protocol from said IP packet prior to delivery of said packet 
to its IP address. 

11. A data network according to claim 10 wherein said IP 
packet remains intact in transmission from said consumers 

40 premises processor terminal to its destination as indicated by 
its IP address. 

12. A data network comprising: 

a wide area data internetwork (Internet); 
a plurality of customer premises processor terminals; 
45 a plurality of information providers connected to said 
Internet; 

a plurality of Internet service providers providing selec- 
tive connection to information providers via said Inter- 
so **; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 
nals and said information providers and said Internet 
service providers; 
55 said public switched telephone network including a tele- 
phone Internet service . provider network which 
includes: 

a local area network (LAN) connecting said customer 
premises processor terminals to a control node in 
60 said LAN through asymmetric digital subscriber line 

connections; 
a router connected to said node; 
a domain name service server connected to said router, 
a dynamic host configuration protocol server connected 
65 to said router; 

a storage of Internet addresses segregated by associa- 
tion with Internet service providers; 
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a switched data network connecting said router to said 
Internet service providers and said information pro- 
viders; 

said telephone Internet service provider network using 
TCP/IP protocol for connecting to said Internet service 
providers and said information providers and using 
protocol other than TCP/IP protocol within said 
switched data network; 

said telephone Internet service provider network provid- 
ing to customer premises processor terminals dynamic 
assignment of temporary Internet addresses and 
domain name to Internet address translations when said 
customer premises processor terminals come on-line, 
said Internet addresses being selected from a segre- 
gated group in correspondence with the customer 
premise terminal affiliation with the Internet service 
provider associated with said group. 

13. A network according to claim 12 wherein said other 
protocol encapsulates said TCP/IP protocol intact 

14. A data network according to claim 12 wherein said 
connections between said node and said customer premises 
processor terminals are full time connections. 

15. A data network according to claim 12 wherein said 
customer premises processor terminals create internetwork 
protocol (IP) packets with IP addresses encapsulated within 
a media access control (MAC) protocol layer with a MAC 
address and send such packets to said node. 

16. A data network according to claim 15 wherein said 
node recognizes the MAC layer address and sends said 
packets to said router. 

17. A data network according to claim 16 wherein said 
router recognizes said IP address and directs such packets to 
said switched data network pursuant to said IP address. 

18. A data network comprising: 

a wide area data internetwork (Internet); 
a plurality of customer premises processor terminals; 
a plurality of information providers connected to said 
Internet; 

a plurality of Internet service providers providing selec- 
tive connection to information providers via said Inter- 
net; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 
nals and said information providers and said Internet 
service providers; 

said public switched telephone network including a tele- 
phone Internet service provider network which 
includes: 

a local area network (LAN) connecting said customer 
premises processor terminals to a control node in 
said LAN through asymmetric digital subscriber line 
connections; 

a router connected to said node; 

a domain name service server connected to said router, 

a dynamic host configuration protocol server connected 
to said router; 

a storage of Internet addresses segregated by associa- 
tion with Internet service providers; 

a switched data network connecting said router to said 
Internet service providers and said information pro- 
viders; 

said telephone Internet service provider network using 
TCP/IP protocol for connecting to said Internet service 
providers and said information providers and using 
protocol other than TCP/IP protocol within said 
switched data network; 

said telephone Internet service provider network provid- 
ing to customer premises processor terminals dynamic 
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assignment of temporary Internet addresses and 
domain name to Internet address translations when said 
customer premises processor terminals come on-line, 
said Internet addresses being selected from a segre- 
gated group in correspondence with the customer 
premise terminal affiliation with the Internet service 
provider associated with said group. 

19. A data network comprising: 

a wide area data internetwork (Internet); 
a plurality of customer premises processor terminals; 
a plurality of information providers connected to said 
Internet; 

a plurality of Internet service providers providing selec- 
tive connection to information providers via said Inter- 
act; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 
nals and said information providers and said Internet 
service providers; 

said public switched telephone network including a tele- 
phone Internet service provider network which 
includes: 

a local area network (LAN) connecting said customer 
premises processor terminals to a control node in 
said LAN through asymmetric digital subscriber line 
connections; 

a router connected to said node; 

a domain name service server connected to said router; 

a dynamic host configuration protocol server connected 
to said router, 

a switched data network connecting said router to said 
Internet service providers and said information pro- 
viders; 

said telephone Internet service provider network using 
TCP/TP protocol for connecting to said Internet service 
providers and said information providers and using 
protocol other than said TCP/IP protocol within said 
switched data network; 

said telephone Internet service provider network provid- 
ing to customer premises processor terminals dynamic 
assignment of temporary Internet addresses and 
domain name translations following authentication. 

20. A data network according to claim 19 wherein said 
authentication includes public/private key encryption 
between said customer premise terminal and said dynamic 
host configuration protocol server. 

21. A data network according to claim 19 wherein said 
telephone Internet service provider network includes mul- 
tiple domain name service servers connected to said router 
and multiple storages of domain name to Internet address 
translation tables, said storages being associated with said 
domain name service servers, said domain service servers 
accessing said storages seriatim for the sought domain name 
to provide said translation. 

22. A data network according to claim 19 wherein said 
authentication includes delivery of identification signals by 
said customer premises processor terminals to said dynamic 
host configuration protocol server. 

23. A data network according to claim 22 wherein said 
signals correspond to a password. 

24. A data network according to claim 22 wherein said 
signals correspond to a name and a password. 

25. A data network comprising: 

a wide area data internetwork (Internet); 
a plurality of customer premises processor terminals; 
a plurality of information providers connected to said 
Internet; 
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a plurality of Internet service providers providing selec- 
tive connection to information providers via said Inter- 
net; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 5 
nals and said information providers and said Internet 
service providers; 

said public switched telephone network including a tele- 
phone Internet service provider network which 
includes: 

a local area network (LAN) connecting said customer 10 
premises processor terminals to a control node in 
said LAN through asymmetric digital subscriber line 
connections; 

a router connected to said node; 

a domain name service server connected to said router; 15 

a dynamic host configuration protocol server connected 
to said router; 

a storage of domain name to Internet address transla- 
tions associated with said domain name service 
server, 

a switched data network connecting said router to said 20 
Internet service providers and said information pro- 
viders; 

said telephone Internet service provider network using 
TCP/TP protocol for connecting to said Internet service 
providers and said information providers and using 25 
protocol other than TCP/IP protocol within said 
switched data network; 

said telephone Internet service provider network provid- 
ing to customer premises processor terminals dynamic 
assignment of temporary Internet addresses and 30 
domain name to Internet address translations and 
updating said storage of said storage of domain name to 
Internet address translations when an assignment of an 
Internet address is accepted. 

26. A method of establishing connection from a customer 35 
premises processor terminal to an Internet connected infor- 
mation service provider via a switched wired telecommuni- 
cations network comprising the steps of: 

establishing a dedicated asymmetric digital subscriber 
line (ADSL) connection from said customer premises ^ 
processor terminal to a node on premises of said 
telecommunications network; 

requesting assignment of a temporary Internet address; 

assigning a temporary Internet address to the requesting 
entity; 4J 

translating a domain name for said Internet connected 
information service provider to an Internet address; and 

using said translated Internet address to connect said 
customer premises processor terminal to said Internet 
connected service provider via said dedicated asyra- 
metric digital subscriber line connection from said 
customer premises processor terminal to said node on 
premises of said telecommunications network and via a 
telephone Internet service provider network in said 
telecommunications network. 

27. In a data network comprising: 35 
a wide area data internetwork (Internet); 

a plurality of customer premises processor terminals; 

a plurality of hosts connected to said Internet; 

a public switched telephone network providing selective 
connection of said customer premises processor termi- 60 
nals and said hosts; 

said public switched telephone network including a tele- 
phone Internet service provider network which 
includes: 

a local area network (LAN) connecting said customer 65 
premises processor terminals to a control node in 
said LAN; 
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a router connected to said node; 

a domain name service server connected to said router; 

a dynamic host configuration protocol server connected 
to said router; 

a storage of domain name to Internet address transla- 
tions associated with said domain name service 
server, 

a switched data network connecting said router to said 
hosts; 

a method comprising the steps of: 

requesting from said dynamic host configuration pro- 
tocol server with one of said customer premises 
processor terminals an Internet connection; 

responding to an authentication request by inputting to 
said customer premises processor terminal the 
requested authentication; 

responding to an Internet address offered by said 
dynamic host configuration protocol server with an 
acceptance; 

updating said domain name service server from said 
dynamic host configuration protocol server to reflect 
the assignment of said accepted Internet address to 
said customer premises processor terminal; 

requesting from said customer premises processor ter- 
minal to said domain name service server connection 
to said host; and 

connecting said customer premises processor terminal 
to said host 

28. A method according to claim 27 including the steps of 
using public/private password encryption between said cus- 
tomer premises processor terminal and said dynamic host 
configuration protocol server for the steps of: 

responding to said authentication request by inputting to 
said customer premises processor terminal the 
requested authentication; and 

said Internet address offer by said dynamic host configu- 
ration protocol server, 

29. A method of establishing connection from a customer 
premises processor terminal to an Internet connected infor- 
mation service provider via a switched wired telecommuni- 
cations network comprising the steps of: 

establishing a digital subscriber line connection from said 
customer premises processor terminal to a node on 
premises of said telecommunications network; 

requesting assignment of a temporary Internet address 
from a dynamic host configuration protocol server via 
said node; 

requesting authentication from said dynamic host con- 
figuration protocol server to said customer premises 
processor terminal via said node; 

transmitting said authentication from said customer pre- 
mises processor terminal to said dynamic host configu- 
ration protocol server via said node; 

assigning a temporary Internet address to the requesting 
customer premises processor terminal; 

requesting information from said customer premises pro- 
cessor terminal to said host via said node. 

30. A method according to daim 29 including the steps of 
using public/private password encryption between said cus- 
tomer prernises processor terminal and said dynamic host 
configuration protocol server for the steps of: 

transmitting said authentication from said customer pre- 
mises processor terminal to said dynamic host configu- 
ration protocol server via said node; 

assigning a temporary Internet address to the requesting 
customer premises processor terminal. 

* * * * * 
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